Fortinet Updates
1942Warning Date
Severity Level
Warning Number
Target Sector
6 January, 2021
● High
2021-2275
All
Description:
Fortinet has released security updates to address multiple vulnerabilities in the following products:
- FortiDeceptor versions 3.1.0 and below.
- FortiDeceptor versions 3.0.1 and below.
- FortiWeb versions 6.3.5 and below.
- FortiWeb versions 6.3.7 and below.
- FortiWeb versions 6.2.3 and below.
- FortiGate versions 6.0.10 and below.
- FortiGate versions 6.2.4 and below.
- FortiGate versions 6.4.1 and below.
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Information Disclosure
- Execute arbitrary code
- Denial of Service (DoS) attack
Best practice and Recommendations:
The CERT team encourages users to review Fortinet security advisory and apply the necessary updates: